Event details

Ask Microsoft Anything (AMA) about updating Secure Boot certificates on your Windows devices before they expire in June of 2026. We recently published the first version of the Secure Boot playbook, o...
Heather_Poulsen
Updated Dec 09, 2025
AMA
AlexHellen's avatar
AlexHellen
Occasional Reader
Dec 10, 2025

We have tested a scripted method for updating the keys which works but ideally we want to deploy the policy through Intune. The policy we created with the setting

 

Enable Secureboot Certificate Updates 

 

(Enabled) Initiates the deployment of new secure boot certificates and related updates.

But on both 24H2 and 25H2 this seems to do nothing. Will this be usable soon?